AryStinger Malware Infects 4,300 Legacy Routers to Build Reconnaissance Proxy Network.
4,300+ Outdated Routers Hijacked in Stealthy Spy Infrastructure by AryStinger malware.
Canada’s Spy Agency Used First-of-Its-Kind Warrant to Clean Botnet-Infected Devices.
Recent investigations show that AryStinger is not just an ordinary botnet and is mainly used for identifying targets, gathering information, and preparing the ground for cyberattacks.
Researchers say this malware uses encrypted communications to hide its activities and targets not only vulnerable routers but also some network-attached storage (NAS) devices.
Researchers say this malware uses encrypted communications to hide its activities and targets not only vulnerable routers but also some network-attached storage (NAS) devices.
That WhatsApp file from a trusted contact may not be safe.
A new VBS malware campaign is spreading through WhatsApp Desktop/Web and installing ManageEngine Endpoint Central for remote access on Windows PCs.
A new VBS malware campaign is spreading through WhatsApp Desktop/Web and installing ManageEngine Endpoint Central for remote access on Windows PCs.
A 1997 parser bug is still haunting Squid.
Squidbleed (CVE-2026-47729) can leak another user’s cleartext HTTP request through a shared Squid proxy, including credentials or session tokens.
Squidbleed (CVE-2026-47729) can leak another user’s cleartext HTTP request through a shared Squid proxy, including credentials or session tokens.
A fake Node.js download was the start of a real malware chain.
Elastic researchers found a new #malvertising campaign using Google Ads to deliver OXLOADER, a previously unreported loader that drops CastleStealer.
The payload was staged through Storj and built to avoid analysis.
Elastic researchers found a new #malvertising campaign using Google Ads to deliver OXLOADER, a previously unreported loader that drops CastleStealer.
The payload was staged through Storj and built to avoid analysis.
Canada’s spy service got a court order to remotely clean malware-infected devices.
CSIS used its threat reduction powers to neutralize two foreign-run botnets operating through Canadian servers, SOHO routers, cameras, TVs, and other IoT gear.
The ruling stayed secret for more than 2 years.
CSIS used its threat reduction powers to neutralize two foreign-run botnets operating through Canadian servers, SOHO routers, cameras, TVs, and other IoT gear.
The ruling stayed secret for more than 2 years.
The critical NGINX flaws now have a clearer technical path.
CVE-2026-42530 comes down to an HTTP/3 lifetime mismatch that can leave a freed stream pointer treated as valid.
CVE-2026-42055 lets oversized HPACK data write past its buffer, causing unauthenticated worker crashes.
CVE-2026-42530 comes down to an HTTP/3 lifetime mismatch that can leave a freed stream pointer treated as valid.
CVE-2026-42055 lets oversized HPACK data write past its buffer, causing unauthenticated worker crashes.
Fake AI Agent Skill Passed Security Scans and Reportedly Reached 26,000 Agents.
Eight-Year-Old Samsung KNOX Flaw Exposed Millions of Galaxy Devices to Kernel Attacks.